Security architect jobs in Boynton Beach, FL

At EY, we're all in to shape your future with confidence. We'll help you succeed in a globally connected powerhouse of diverse teams and take your career wherever you want it to go. Join EY and help to build a better working world. **Manager - Security Architect** **The opportunity** We're hiring an experienced Security Architect that is an expert in the modern security threat and mitigation environment. Knowledge of the use of security in the development of applications (threat model development) best practices for security in the design architecture of applications. The use of AI in SEIM/MDR/MXDR and/or the analysis of behavioral threats. The successful candidate should have experience in the emerging area of AI based attack vectors and be able to devise successful mitigation. The candidate should thrive in fast-paced environments and are passionate about enabling scalable AI solutions. **Your key responsibilities** + Develop effective security designs for implementation into enterprise applications and internal EY platforms. + Support security tool selection and verification. + Develop best practices for security design patterns in AI native applications. + Execute security assessments based on experience and select AI and conventional code analysis tools. + Assess new proposed projects to insure they are leveraging best security practices architecture design and implementation. + Collaborate with other architectural experts in AI, Data and Infrastructure to insure balanced and practical outcomes. + Support strategic business development activities for emerging technology. **Skills and attributes for success** + Strong analytical and troubleshooting skills. + Ability to lead security architectural product functions and mentor junior engineers. + Comfortable working across cross-functional teams and managing competing priorities. + Build and manage strong internal and external partnerships by fostering trust, empathy, and mutual value. + Leverage emotional agility and hybrid collaboration to navigate diverse stakeholder needs and drive long-term engagement. + Use critical thinking and creative reasoning to address complex problems and exceed expectations. + Align cross-functional teams around shared goals, ensuring accountability and progress. Use emotional intelligence and hybrid collaboration to motivate others and deliver high-impact results. **T** **o qualify you must have** + 5-10+ years of experience in security engineering and architecture for products. + Understand security and safety in an AI environment (Guardrails, Adversarial attacks, output validation etc..) + Use of security tooling for application verification in Github Advance Security, Checkmarx JFrog, DAST, etc.. + Understand threat model development and verified implementation. + Familiarity with security certifications and appropriate use for best practices development OWASP etc.... + Expertise in the assessment of security best practices of agile development process + Expertise in the development and adoption of security first best practices. **Ideally, you'll also have** + Experience with large-scale cross functional software development projects. + Excellent communication and leadership abilities. **What we offer you** At EY, we'll develop you with future-focused skills and equip you with world-class experiences. We'll empower you in a flexible environment, and fuel you and your extraordinary talents in a diverse and inclusive culture of globally connected teams. Learn more . + We offer a comprehensive compensation and benefits package where you'll be rewarded based on your performance and recognized for the value you bring to the business. The base salary range for this job in all geographic locations in the US is $125,500 to $230,200. The base salary range for New York City Metro Area, Washington State and California (excluding Sacramento) is $150,700 to $261,600. Individual salaries within those ranges are determined through a wide variety of factors including but not limited to education, experience, knowledge, skills and geography. In addition, our Total Rewards package includes medical and dental coverage, pension and 401(k) plans, and a wide range of paid time off options. + Join us in our team-led and leader-enabled hybrid model. Our expectation is for most people in external, client serving roles to work together in person 40-60% of the time over the course of an engagement, project or year. + Under our flexible vacation policy, you'll decide how much vacation time you need based on your own personal circumstances. You'll also be granted time off for designated EY Paid Holidays, Winter/Summer breaks, Personal/Family Care, and other leaves of absence when needed to support your physical, financial, and emotional well-being. **Are you ready to shape your future with confidence? Apply today.** EY accepts applications for this position on an on-going basis. For those living in California, please click here for additional information. EY focuses on high-ethical standards and integrity among its employees and expects all candidates to demonstrate these qualities. **EY | Building a better working world** EY is building a better working world by creating new value for clients, people, society and the planet, while building trust in capital markets. Enabled by data, AI and advanced technology, EY teams help clients shape the future with confidence and develop answers for the most pressing issues of today and tomorrow. EY teams work across a full spectrum of services in assurance, consulting, tax, strategy and transactions. Fueled by sector insights, a globally connected, multi-disciplinary network and diverse ecosystem partners, EY teams can provide services in more than 150 countries and territories. EY provides equal employment opportunities to applicants and employees without regard to race, color, religion, age, sex, sexual orientation, gender identity/expression, pregnancy, genetic information, national origin, protected veteran status, disability status, or any other legally protected basis, including arrest and conviction records, in accordance with applicable law. EY is committed to providing reasonable accommodation to qualified individuals with disabilities including veterans with disabilities. If you have a disability and either need assistance applying online or need to request an accommodation during any part of the application process, please call 1-800-EY-HELP3, select Option 2 for candidate related inquiries, then select Option 1 for candidate queries and finally select Option 2 for candidates with an inquiry which will route you to EY's Talent Shared Services Team (TSS) or email the TSS at ************************** .

Known for being a great place to work and build a career, KPMG provides audit, tax and advisory services for organizations in today's most important industries. Our growth is driven by delivering real results for our clients. It's also enabled by our culture, which encourages individual development, embraces an inclusive environment, rewards innovative excellence and supports our communities. With qualities like those, it's no wonder we're consistently ranked among the best companies to work for by Fortune Magazine, Consulting Magazine, Seramount, Fair360 and others. If you're as passionate about your future as we are, join our team. KPMG is currently seeking a Director, Tech Engineering to join our Tax Ignition Group. Responsibilities: * Lead the function of responding to clients' security inquires * Meet with clients to answer their security questions and negotiate compensating controls when there are gaps between client requirements and our product offerings * Drive innovation and improvement in the client security inquiry process such incorporating Artificial Intelligence into the process, creating additional collateral such as whitepapers, managing metrics, and improving the tooling and interactions with requestors * Partner with various groups within Tax's technology function and business teams to incorporate trends into product roadmaps; collaborate with other compliance teams, and raise awareness around client security requirements * Review and respond to client security questionnaires and assessments * Build and maintain a knowledge base of common client questions Qualifications: * Minimum ten years of recent experience in Information Technology (IT) security compliance, risk management or related IT security within a large IT organization, preferably within a professional services firm, software product, or other highly regulated environment * Bachelor's degree from an accredited college or university is preferred * Deep understanding of cloud architecture, modern software development, and technical security controls is required; Azure experience is preferred * Strong executive presence, negotiation, presentation, and communication skills are required; excellent analytical and problem-solving skills to assess complex security issues and develop effective solutions; capability to work effectively in a global environment, understanding diverse cultural perspectives and international client needs * Proven experience in client-facing roles, particularly in handling security inquiries, negotiations, and managing client relationships; demonstrated ability to drive innovation and continuous process improvement, particularly in integrating new technologies and methodologies into existing processes * Demonstrated knowledge of industry authoritative sources such as COBIT, NIST, ISO standards; CISM, CISA, ISO 27001 Auditor, LSS Green Belt, CRISC, CIPP, CGEIT or ITIL preferred * Must be authorized to work in the U.S. without the need for employment-based visa sponsorship now or in the future. KPMG LLP will not sponsor applicants for U.S. work visa status for this opportunity (no sponsorship is available for H-1B, L-1, TN, O-1, E-3, H-1B1, F-1, J-1, OPT, CPT or any other employment-based visa KPMG LLP and its affiliates and subsidiaries ("KPMG") complies with all local/state regulations regarding displaying salary ranges. If required, the ranges displayed below or via the URL below are specifically for those potential hires who will work in the location(s) listed. Any offered salary is determined based on relevant factors such as applicant's skills, job responsibilities, prior relevant experience, certain degrees and certifications and market considerations. In addition, KPMG is proud to offer a comprehensive, competitive benefits package, with options designed to help you make the best decisions for yourself, your family, and your lifestyle. Available benefits are based on eligibility. Our Total Rewards package includes a variety of medical and dental plans, vision coverage, disability and life insurance, 401(k) plans, and a robust suite of personal well-being benefits to support your mental health. Depending on job classification, standard work hours, and years of service, KPMG provides Personal Time Off per fiscal year. Additionally, each year KPMG publishes a calendar of holidays to be observed during the year and provides eligible employees two breaks each year where employees will not be required to use Personal Time Off; one is at year end and the other is around the July 4th holiday. Additional details about our benefits can be found towards the bottom of our KPMG US Careers site at Benefits & How We Work. Follow this link to obtain salary ranges by city outside of CA: ********************************************************************** KPMG offers a comprehensive compensation and benefits package. KPMG is an equal opportunity employer. KPMG complies with all applicable federal, state and local laws regarding recruitment and hiring. All qualified applicants are considered for employment without regard to race, color, religion, age, sex, sexual orientation, gender identity, national origin, citizenship status, disability, protected veteran status, or any other category protected by applicable federal, state or local laws. The attached link contains further information regarding KPMG's compliance with federal, state and local recruitment and hiring laws. No phone calls or agencies please. KPMG recruits on a rolling basis. Candidates are considered as they apply, until the opportunity is filled. Candidates are encouraged to apply expeditiously to any role(s) for which they are qualified that is also of interest to them. Los Angeles County applicants: Material job duties for this position are listed above. Criminal history may have a direct, adverse, and negative relationship with some of the material job duties of this position. These include the duties and responsibilities listed above, as well as the abilities to adhere to company policies, exercise sound judgment, effectively manage stress and work safely and respectfully with others, exhibit trustworthiness, and safeguard business operations and company reputation. Pursuant to the California Fair Chance Act, Los Angeles County Fair Chance Ordinance for Employers, Fair Chance Initiative for Hiring Ordinance, and San Francisco Fair Chance Ordinance, we will consider for employment qualified applicants with arrest and conviction records.

Kforce has a client that is seeking a Senior Security Analyst in Juno Beach, FL. As a Senior Analyst specializing in cybersecurity, you'll strengthen Company's security posture through thorough assessment of protective controls, comprehensive risk analysis, and the development of security blueprints and standards aligned to corporate policies. The role calls for detail-oriented security professionals capable of evaluating the effectiveness of our technology security measures, conducting risk assessments, and supporting the architectural team's strategic initiatives through analytical insights. Key Areas of Focus: Continuous learning and adaptation are essential as you develop expertise across various IT disciplines through active assessment of protective controls. You will evaluate network security infrastructure effectiveness, including firewalls and intrusion detection systems, and assess cloud security implementations within AWS and Azure platforms to ensure adherence to security best practices. Your work will include analyzing endpoint security deployments such as EDR tools, anti-malware, antivirus, and encryption solutions. Job Duties & Responsibilities: * Security Control Assessment - Execute enterprise security compliance activities by performing comprehensive reviews, audits, assessments, and validation of security controls across technology domains * Risk Analysis & Documentation - Conduct thorough risk assessments of current and future hardware and software technologies, documenting findings and creating requirements for security improvements * Blueprint Development - Create and maintain security standards, blueprints, and control frameworks aligned to corporate policies, ensuring consistent application across the enterprise* High School diploma or GED * A minimum of 3 years of experience in the IT field Preferred Qualifications: * A Bachelor's degree in Computer Science, System Analysis, or related field, or equivalent experience * Background in working with diverse technical configurations, technologies, and processing environments

Do you possess an understanding of security controls and their implementation within complex IT environments? Do you have demonstrated experience in implementing and managing continuous monitoring programs for cloud-based systems within the Federal Government? We may have the right role for you! About the Business: LexisNexis Risk Solutions is the essential partner in the assessment of risk. Within our Business Services vertical, we offer a multitude of solutions focused on helping businesses of all sizes drive higher revenue growth, maximize operational efficiencies, and improve customer experience. Our solutions help our customers solve difficult problems in the areas of Anti-Money Laundering/Counter Terrorist Financing, Identity Authentication & Verification, Fraud and Credit Risk mitigation and Customer Data Management. You can learn more about LexisNexis Risk at the link below, *************************** About our Team: The FedRAMP (Federal Risk and Authorization Management Program) Team is focused on analytics and security monitoring within Azure cloud environments. The team is responsible for monitoring and scanning the security posture of the FedRAMP boundary, which includes all Azure cloud subscriptions. The team coordinates with control owners (development, database, infrastructure teams) to ensure vulnerabilities identified in reports are fixed within FedRAMP-mandated timelines About the Role: This position will analyze risks and help operate the enterprise security program. The position requires strong technical skill, to execute security processes with minimal guidance and help achieve operational efficiencies therein. Other responsibilities include handling service requests from the Business and Technology teams, analyzing/validating the requirements, defining the access rules, scripting the changes, and providing troubleshooting support related to any access issues. The individual will assist with reviewing existing tools, applications, and processes to help strengthen and optimize current capabilities, as well as identifying any gaps or technical solutions to further enhance the team's effectiveness Requirements: * Extensive years of IT security experience * BS Engineering/Computer Science or equivalent experience required * Programming and Automation: Python, Pyspark, SQL * Data Visualization: Proficiency in tools like Microsoft Fabric, Power BI to create dashboards and reports * Cloud Platforms: Proficiency in Azure, AWS, or Google Cloud Platform. * Tools and Frameworks: Docker, Kubernetes, and infrastructure-as-code tools like Terraform, GitHub * Data Management: Experience with ETL process, data warehousing * Vulnerability management: Tools like Qualys, ServiceNow. * SIEM: Tools like Microsoft Sentinel, Splunk * Possess FedRAMP continuous monitoring experience. * Understanding of the NIST Special Publication 800-53 guidelines and FedRAMP requirements * Excellent written and verbal communication skills, with experience in client engagement and survey development. Responsibilities: * Promote and support compliance initiatives by authoring and enforcing security policies. * Analyze and respond to security events, collaborating with peers to protect company assets. * Design and implement security solutions to address emerging threats and compliance needs. * Develop and manage security programs, including procedures, guidelines, and performance metrics. * Communicate across departments to raise security awareness and share risk-related updates. * Evaluate and improve security programs to enhance maturity and operational efficiency. * All other duties as assigned. U.S. National Base Pay Range: $93,400 - $155,700. Geographic differentials may apply in some locations to better reflect local market rates. If performed in Illinois, the pay range is $98,100 - $163,500. If performed in Chicago, IL, the pay range is $102,800 - $171,300. This job is eligible for an annual incentive bonus. We know that your wellbeing and happiness are key to a long and successful career. These are some of the benefits we are delighted to offer to our US full- and part-time employees working at least 20 hours or more per week: ● Health Benefits: Comprehensive, multi-carrier program for medical, dental and vision benefits ● Retirement Benefits: 401(k) with match and an Employee Share Purchase Plan ● Wellbeing: Wellness platform with incentives, Headspace app subscription, Employee Assistance and Time-off Programs ● Short-and-Long Term Disability, Life and Accidental Death Insurance, Critical Illness, and Hospital Indemnity ● Family Benefits, including bonding and family care leaves, adoption and surrogacy benefits ● Health Savings, Health Care, Dependent Care and Commuter Spending Accounts ● In addition to annual Paid Time Off, we offer up to two days of paid leave each to participate in Employee Resource Groups and to volunteer with your charity of choice We are committed to providing a fair and accessible hiring process. If you have a disability or other need that requires accommodation or adjustment, please let us know by completing our Applicant Request Support Form or please contact **************. Criminals may pose as recruiters asking for money or personal information. We never request money or banking details from job applicants. Learn more about spotting and avoiding scams here. Please read our Candidate Privacy Policy. We are an equal opportunity employer: qualified applicants are considered for and treated during employment without regard to race, color, creed, religion, sex, national origin, citizenship status, disability status, protected veteran status, age, marital status, sexual orientation, gender identity, genetic information, or any other characteristic protected by law. USA Job Seekers: EEO Know Your Rights.

Hours: 40 Pay Details: $87,000 - $151,000 USD TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs. As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role. Line of Business: Technology Solutions : The Manager Information Security manages / leads a team of Technology Controls / Information Security experts in the development and/ or management of relevant strategies, programs, tools, frameworks and policies and provides specialized oversight / control / governance activities for a key business line/segment or transformational (change the bank) strategic initiative / program, liaising across the organization and primarily interfacing with executive and/or functional stakeholders to minimize overall technology risks to the Bank for own area. Job Description: This position manages junior level penetration testers, vendor coordination for multiple testing services, processes, procedures and scheduling for penetration, dynamic scanning, and manual code review testing services. Responsibilities: * Vendor Management: Manage and coordinate penetration testing engagements with vendors. * People Management: Manage a team of Junior level penetration testers and their development. * DAST: Manage the DAST program and tooling. Familiarity with current industry tooling and technologies and those being introduced. * Facilitate Penetration Tests: Perform thorough and methodical penetration testing. * Evaluate and Assign: penetration tests to appropriate resources. * Vulnerability Assessment: Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture. * Report Findings: Document and communicate findings clearly and effectively to both technical and non-technical stakeholders. Prepare comprehensive reports with recommendations for remediation. * Develop Test Procedures: Design and execute detailed test requirements. * Stay Current: Keep up-to-date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective. * Collaborate with Teams: Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements; work closely with advisory and SDLC pipeline teams to ensure compliance; work closely with PCS team to manage PCI testing requirements. This position will collaborate with many application security teams. * Perform Risk Assessments: Evaluate and assess potential security risks related to new and existing systems and technologies. * Compliance: Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies. * Incidents: Act as a testing SME on incident calls; support testers on the calls. Depth & Scope: * Advanced knowledge of Bank, technology standards and managing people / projects * Leads a small team of IT professionals; coaches/ educates, monitors and manages team members * Strong communication, negotiation and organizational skills specifically including the ability to present options in business terms to both IT and business staff including executives Education & Experience: * Bachelor's degree preferred * Information security certification / accreditation an asset * 7+ years of relevant experience Preferred Qualifications : * Technical Skills: * Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali. * Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles. * Penetration testing, DAST, Manual Code Review knowledge. * Analytical Skills: Strong analytical and problem-solving abilities with attention to detail. * Organizational Skills: Manage documents and procedures for testing team. * Multi-tasking: This job requires exceptional ability to multi-task with multiple workstreams to manage daily. * Communication: Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non-technical stakeholders. * Ethical Standards: Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards. * Experience with penetration testing in AI, cloud environments (e.g., AWS, Azure) and PCI testing. * Familiarity with security standards and frameworks. * Previous experience managing and developing teams. * Certifications: Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable. * Provide support and consulting in preparation for Audits and in composing management responses and appropriate remediation activities * Participate in computer security incident responses relevant to business (or enterprise wide) and represent respective function and Enterprise position to the business, and business needs to incident response team #TDCyberSecurity #Hybrid Physical Requirements: Never: 0%; Occasional: 1-33%; Frequent: 34-66%; Continuous: 67-100% * Domestic Travel - Occasional * International Travel - Never * Performing sedentary work - Continuous * Performing multiple tasks - Continuous * Operating standard office equipment - Continuous * Responding quickly to sounds - Occasional * Sitting - Continuous * Standing - Occasional * Walking - Occasional * Moving safely in confined spaces - Occasional * Lifting/Carrying (under 25 lbs.) - Occasional * Lifting/Carrying (over 25 lbs.) - Never * Squatting - Occasional * Bending - Occasional * Kneeling - Never * Crawling - Never * Climbing - Never * Reaching overhead - Never * Reaching forward - Occasional * Pushing - Never * Pulling - Never * Twisting - Never * Concentrating for long periods of time - Continuous * Applying common sense to deal with problems involving standardized situations - Continuous * Reading, writing and comprehending instructions - Continuous * Adding, subtracting, multiplying and dividing - Continuous The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required. The listed or specified responsibilities & duties are considered essential functions for ADA purposes. Who We Are: TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues. TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you. Our Total Rewards Package Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical and mental well-being goals. Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition. Learn more Additional Information: We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home. Colleague Development If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals. Training & Onboarding We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role. Interview Process We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call. Accommodation TD Bank is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, status as a protected veteran or any other characteristic protected under applicable federal, state, or local law. If you are an applicant with a disability and need accommodations to complete the application process, please email TD Bank US Workplace Accommodations Program at ***************. Include your full name, best way to reach you and the accommodation needed to assist you with the applicant process.

About GoodLeap:GoodLeap is a technology company delivering best-in-class financing and software products for sustainable solutions, from solar panels and batteries to energy-efficient HVAC, heat pumps, roofing, windows, and more. Over 1 million homeowners have benefited from our simple, fast, and frictionless technology that makes the adoption of these products more affordable, accessible, and easier to understand. Thousands of professionals deploying home efficiency and solar solutions rely on GoodLeap's proprietary, AI-powered applications and developer tools to drive more transparent customer communication, deeper business intelligence, and streamlined payment and operations. Our platform has led to more than $30 billion in financing for sustainable solutions since 2018. GoodLeap is also proud to support our award-winning nonprofit, GivePower, which is building and deploying life-saving water and clean electricity systems, changing the lives of more than 1.6 million people across Africa, Asia, and South America. Position Summary The GoodLeap security team is responsible for both business enablement and safeguarding the organization's information assets; it is involved in virtually all aspects of the business, from product safety and resilience, to building security paved roads, customer, partner, and regulatory trust, managing technology governance and compliance, and ensuring the privacy, and safety of GoodLeap's customers, partners, and employees information. The senior security engineer role provides a unique opportunity to shape the security and resilience of GoodLeap corporate systems, services, and operational processes. In this role, you will work closely with product, engineering, IT, and business teams within GoodLeap, acting as the key individual with both the authority and responsibility to ensure the safety and resilience of enterprise systems, products, and services. Your oversight will encompass: - Enterprise systems:Identifying potential misuse and abuse cases, proposing solutions to address these scenarios, and identifying product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. - Build-time controls: Managing applications/products security controls and activities during development. - Runtime controls: Overseeing security measures at runtime, from prevention to detection and response. Additionally, you will be involved with aspects of internally built products and represent all areas of security, spanning governance, risk, and compliance (GRC) to security monitoring, for a number of departments/teams. You will also have the authority and ability to involve other security team members as needed. While you will take on multiple responsibilities-from advisor to builder and beyond-your primary focus will be designing and building security patterns and practices for services and processes, and fostering strong relationships with product, business, and engineering. Essential Job Duties & Responsibilities Lead, participate in, and contribute to partnerships between security, IT, General & Administrative teams, engineering, product, and operations teams to build, orchestrate, and automate security controls and services in GoodLeap enterprise systems, products, services, and operational processes. Identify potential misuse and abuse cases in enterprise systems, propose solutions to address these scenarios, and identify product features, configuration settings, and/or mitigating or compensating controls to meet resilience requirements. Support or develop components of the security analytics platform. Contribute to investigations, threat hunting, and incident response activities in a supporting role. Collaborate with the monitoring and response team to create playbooks for specific incident response scenarios related to the products and services you oversee. These investigations, incidents, and playbooks may address security, fraud, privacy, resilience, and related concerns. Support the security operations team with the vulnerability management lifecycle for products and services under your purview. Ensure technical alignment for the products and services you oversee with team initiatives, including GRC, security operations, and monitoring and response activities. Required Skills, Knowledge & Abilities Strong communicator with the ability to lead technical architecture discussions, drive technical decisions, and effectively communicate with non-technical audiences. Expertise in agile product lifecycles. Ideally, you have experience in a product manager or engineering manager role and understand how SaaS products (B2B, B2B2C, and B2C) are built, including roadmap planning and feature and defect prioritization. Experience with threat modeling methodologies, with the ability to create efficient and scalable approaches to conducting such assessments. Familiarity with AWS services, including KMS, SST, Container Registry, ELBs, Lambda, API Gateway, CloudTrail, and IAM (knowledge of GCP and/or Azure is a plus). Proven ability to establish credibility and build trust with business, engineers, and operational staff; confident yet humble. Hands-on experience with managing security for core enterprise systems, e.g., ERP, HCM, Salesforce, etc. Strong understanding of both human and non-human identity management and common enterprise and consumer authentication standards and use cases. Practical experience with CI/CD pipelines and DevOps tools, including Infrastructure-as-Code (IaC) tools like Terraform, Pulumi, or CDK; GitHub and GitHub Actions; artifact management; and secrets management tools like Doppler and HashiCorp Vault. Passionate about learning new technologies. While you're not expected to know everything, you should demonstrate a willingness and ability to learn as needed. Prior experience interfacing and supporting with G&A teams, internal product teams, and other cross-functional areas. Proficiency in writing automation scripts in multiple languages, with prior experience automating security processes in cloud or SaaS environments. Experience engaging with vendors in design partnerships. Experience overseeing vulnerability and threat management at the platform and application levels. Familiarity with penetration testing and red team exercises, including manual verification, exploitation, and lateral movement. Ability to balance a high-level view of security strategy with attention to detail, ensuring thorough and effective execution. Additional Information Regarding Job Duties and s: Job duties include additional responsibilities as assigned by one's supervisor or other managers related to the position/department. This job description is meant to describe the general nature and level of work being performed; it is not intended to be construed as an exhaustive list of all responsibilities, duties and other skills required for the position. The Company reserves the right at any time with or without notice to alter or change job responsibilities, reassign or transfer job position or assign additional job responsibilities, subject to applicable law. The Company shall provide reasonable accommodations of known disabilities to enable a qualified applicant or employee to apply for employment, perform the essential functions of the job, or enjoy the benefits and privileges of employment as required by the law. If you are an extraordinary professional who thrives in a collaborative work culture and values a rewarding career, then we want to work with you! Apply today! We are committed to protecting your privacy. To learn more about how we collect, use, and safeguard your personal information during the application process, please review our Employment Privacy Policy and Recruiting Policy on AI.

Full-time Description Our Company: At red violet, we build proprietary technologies and apply analytical capabilities to deliver identity intelligence. Our technology powers critical solutions, which empower organizations to operate with confidence. Our solutions enable the real-time identification and location of people, businesses, assets and their interrelationships. These solutions are used for purposes including identity verification, risk mitigation, due diligence, fraud detection and prevention, regulatory compliance, and customer acquisition. Our intelligent platform, CORE™, is purpose-built for the enterprise, yet flexible enough for organizations of all sizes, bringing clarity to massive datasets by transforming data into intelligence. Our solutions are used today to enable frictionless commerce, to ensure safety, and to reduce fraud and the concomitant expense borne by society. The Role: Cloud Security Engineer is responsible for ensuring information systems data availability, integrity, authentication, confidentiality, and non-repudiation within the cloud environments. In collaboration with other information security staff and technical teams, this position develops and implements security measures and controls for information systems and networks. The Cloud Security Engineer advises management that systems adhere to established cloud security standards and regulatory requirements. What You Will Do: Advise, design, implement, and maintain security controls and solutions for cloud-based infrastructure and applications. Protects systems by defining and maintaining logical access privileges, access control structures, and processes. Conduct regular security assessments and audits of cloud environments to identify and address vulnerabilities and threats. Collaborate with cross-functional teams to integrate security best practices into cloud architecture and development processes. Provide detailed documentation of all work. Recognizes information security-related problems by identifying abnormalities and reporting violations/exceptions to the appropriate stakeholder(s). Implements cloud security improvements by assessing current situations; evaluating trends; anticipating future requirements. Support the team during security incidents and investigations and work with broad teams to advance the security posture of the company. Assist the stakeholders in identifying and evaluating technical and operational security risks, threats, weaknesses, and vulnerabilities. Identify, advise, and implement new security technologies, including AI, and best practices into the company's cloud infrastructure. Stay up-to-date on emerging threats, vulnerabilities, and security technologies in the cloud space. Cloud & AI Security Design: Design, implement, and maintain security controls for cloud-native and AI-based systems, including ML pipelines, AI APIs, and LLM-integrated services. What You Bring: 2+ years of experience in cloud security engineering. 5+ years of hands-on experience in IT Security or related areas. Experience working with cloud security tools such as Firewall, anti-virus, WAF, SIEM, log management, and system monitoring. Bachelor of Science in Computer Science, Information Technology, Information Security, or related field. Strong communication and collaboration skills with the ability to work effectively with cross-functional teams. Experience with scripting and automation tools (e.g., Python, PowerShell) for security tasks preferred. Deep understanding of cloud computing technologies (e.g., AWS, Azure, Google Cloud) and associated security controls. Strong knowledge of security principles, standards, and best practices (e.g., NIST, ISO 27001, PCI, SOC). Able to use sound judgment; work independently, with minimal supervision Applicants must have permanent work authorization in the U.S.; we are not sponsoring visas for this role. What We Offer: red violet offers excellent benefits including opportunity for stock (RSU) grants, a 401K and generous company match, flexible PTO policy, medical, dental and vision coverage, commuter benefits, in-office healthy snacks, team events and more. red violet is proud to be an Equal Opportunity Employer.

Job Description Octagon Talent Solutions is a South Florida-based, full-service technology recruitment and staffing firm dedicated to connecting top talent with the right opportunities. We take a human-centered approach to technical recruitment, prioritizing candidates' long-term career goals while carefully evaluating cultural fit. By fostering meaningful, lasting relationships, we deliver placements built to last. Job Overview: We are seeking a seasoned Concierge Security Engineer (CSE) to join our team in Fort Lauderdale, FL. The Concierge Security Engineer will build and maintain strong partnerships with customers while delivering customized security solutions. Core duties include investigating security incidents, configuring and troubleshooting data sources, and ensuring smooth service delivery. Respond promptly to customer requests for guidance, information, or support promptly, coordinating with other teams when needed. Foster proactive communication and collaboration with internal and external stakeholders. The Concierge Security Engineer (CSE) role combines the expertise of an IT Security Analyst, Security Architect, and Incident Response Consultant. Success requires both strong technical capabilities and the ability to communicate complex security concepts clearly and effectively to a non-technical audience. RESPONSIBILITIES: Build and nurture exceptional relationships with customers, ensuring a strong and lasting partnership. Deliver security solutions directly to customers, including, configuring, troubleshooting, and verifying data sources. Respond promptly to customers requests for guidance, information, or support, escalating issues as necessary and coordinating with other teams to ensure resolution. Proactively engage and communicate with both internal and external stakeholders to foster collaboration and transparency. Serve in a multifaceted role that blends responsibilities of an IT Security Analyst, Security Architect, and Incident Response Consultant. REQUIREMENTS: Bachelor's degree in Computer Science, Information Security, or related discipline. Strong understanding of IT security principles, standards, and best practices. Experience with security information and event management (SIEM) platforms Excellent communication skills with ability to convey complex technical concepts to non-technical audiences Knowledge with leading security frameworks such as NIST, ISO 27001, CIS. Proficiency with security tools, threat detection techniques, and incident response procedures Strong analytical skills, a problem-solving mindset, and a commitment to delivering excellent customer services.

Under limited supervision, this position assists in managing all fiscal activities related to the Department of Safety, Security, and Emergency Preparedness. Responsibilities include assisting the Support Services Division Captain with capital and operational financial tasks, including budgeting and accounting activities; processing requisitions, PO's, invoices and payment packages; specialized recordkeeping, database management and/or specified information gathering projects and tasks, compliance assurance, ad-hoc reporting, and a wide range of highly complex associated administrative, fiscal, and planning activities. Coordinates assigned activities with other departmental areas, departments, campuses and district offices. Performs related work as directed. Minimum Education: * Bachelor's degree in accounting, or other business- related fields. Master's degree preferred. Minimum Experience/Training: * Six years of relevant experience. * An equivalent combination of experience and education may be considered where applicable. Essential Functions: * Daily 35%: Oversee the review, compilation, and payment submittal of payment requests, coordinating with Managers and Administrative Staff to ensure accurate and timely approvals of payments. * Daily 20%: Monitors the recording of the DSSEP financials. Determines and communicates the appropriate procedures for budget and accounting record preparation, research of transactions, and reporting. Reconciles and resolves problems related to operational, capital, and special project accounts. * Bi-Weekly 10%: Manages all project job revenue and cost reports, working with the Support Services Captain, Project Managers and Accounting/Finance to properly utilize all actual and forecasted information to create, maintain and update effective project revenue and expense reporting for all stakeholders. * Bi-Weekly 10%: Analyzes trends in key performance indicators impacting fund balances across all funding sources including all areas of revenue and expenses. Provides variance analysis of actual results as compared to budget, highlights key points within budget cycle to assist with operational changes and action. * Daily 10%: Develops a comprehensive understanding of the business with the ability to proactively provide and analyze data before it's requested and gather agreement with all partners on relevant issues. Effectively able to communicate project cost information to operations and field leadership, as well as develop executive level reports and presentations. * Daily 5%: Understands operational processes that impact the integrity of the controls and procedures related to all financial and project costing systems. Works with DSSEP Senior Management and department leaders to fix inefficient processes and improve the strength of all financial and project reporting. * Annual 5%: Coordinates with the Support Services Division Captain and the DSSEP AVP in the preparation of monthly and annual department level budgets and forecasts, with a strong focus on operational expenditure tracking, capital projects cost estimates, and personnel and related expenses. Provides financial modeling and reporting for the presentation to the Board of Trustees. * Other, as Needed 5%: Creates ad-hoc analysis and assists in special projects, tasks and other duties as assigned. Knowledge, Skills and Abilities: * In-depth functional knowledge and expertise in area of specialization and general knowledge of related areas in the College * Ability to perform complex administrative analysis with only general supervision * Strong diagnostic, analytical and problem-solving skills * Excellent coordination and communication skills used appropriately to influence the decision-making of individuals and groups at all levels in the College * Ability to plan and manage own workflow, priorities and results accomplishment * Requires the ability to present and disseminate data to various levels * Requires advanced knowledge of computerized systems and multiple operating environments i.e. Microsoft Office Products and specialized computer systems. * Ability to interact and effectively communicate with employees and student population Our Culture: * At Broward College, our leaders embody a culture of competence, care, character, composure, and courage. We prioritize serving each other and our students through high-quality guidance, mutual respect, resilience, and fair, thoughtful decision-making, all while upholding the values of integrity, transparency, and honesty. Broward College offers an exceptional benefits package, including, but not limited to: * Affordable High Quality Healthcare Insurance (Medical, Dental & Vision) * Retirement Options - Florida Retirement System (FRS) Pension Plan or the FRS Investment Plan * Wellness Program * Vacation/Paid Time Off * Winter and Spring Break Off * Paid Parental Leave * Tuition Assistance and Tuition Reimbursement are available to employees and family members Job Title Senior Analyst, Department of Safety, Security, and Emergency Preparedness Position Number P0091989 Job Status Full time Regular Department Safety, Security and Emergency Preparedness Location Cypress Creek Administrative Center Pay Grade 715 Salary $52,900 - $62,158 Salary commensurate with education and experience. Work Shift Work Schedule Monday - Friday/Weekends/Varies Hours Per Week 40 Posting End Date Open Until Filled Comments To be considered for this position, a completed online employment application along with a resume is required. Designated Essential Personnel No FLSA Status Exempt Position Classification Professional Technical Staff (PTS) Special Instructions to Applicant: For positions requiring a degree, the official transcripts are required upon hire. An unofficial copy of the degree/transcript is acceptable during the application process and must be attached to the online application. If unable to attach the documentation, please email document to **************** or fax to ************, stating clearly the position name(s) and position number(s) the transcript is to be attached to. Foreign Transcript: Transcripts issued outside of the United States require a equivalency statement from a certified transcript evaluation service verifying the degree equivalency to that of an accredited institution within the USA. This report must be attached with the application and submitted by the application deadline. All required documentation must be received on or before the job posting end date. Please note that multiple documents can be uploaded in the "Resume/CV/Transcript/License/Certification" section of the application Please refer to link with the instructions on how to submit an application with multiple documents. *********************************************************************************** Employment is contingent upon successful completion of the required background screening process. Broward College uses E-Verify to check employee eligibility to work in the United States. You will be required to complete an I-9 Form and provide documentation of your identity for employment purposes. Broward College is an equal opportunity employer and strongly encourages applications from eligible veterans and spouses of veterans, underrepresented groups, including minorities, women, and persons with disabilities. The College does not discriminate on the basis of age, color, disability, gender identity, genetic information, national origin, race, religion, sexual orientation or any other legally protected classification. For inquiries regarding Title IX and the college's non-discrimination policies, contact the Vice President for Talent and Culture at ************, Broward College, 6400 NW 6th Way, Fort Lauderdale, FL 33309. Applicants needing a reasonable accommodation with the application process, please contact the Talent and Culture Department at ********************. Disclaimer The intent of this description is to illustrate the types of duties and responsibilities that will be required of positions given this title and should not be interpreted of describe all the specific duties and responsibilities that may be required in any particular position. Directly related education/experience beyond the minimum stated may be substituted where appropriate at the discretion of the Appointing Authority. Broward College reserves the right to revise or change job duties, job hours, and responsibilities.

At ITRADE STEM, we are shaping the future by fostering job creation and advancing key industries such as space, technology, energy, and manufacturing. Through innovative programs, we equip individuals with career opportunities that enhance essential skills and promote sustainable growth. Join us in our mission to redefine the possibilities of STEM! Job Overview: We are seeking a seasoned Concierge Security Engineer (CSE) to join our team in Fort Lauderdale, FL. The Concierge Security Engineer will build and maintain strong partnerships with customers while delivering customized security solutions. Core duties include investigating security incidents, configuring and troubleshooting data sources, and ensuring smooth service delivery. Respond promptly to customer requests for guidance, information, or support promptly, coordinating with other teams when needed. Foster proactive communication and collaboration with internal and external stakeholders. The Concierge Security Engineer (CSE) role combines the expertise of an IT Security Analyst, Security Architect, and Incident Response Consultant. Success requires both strong technical capabilities and the ability to communicate complex security concepts clearly and effectively to a non-technical audience. RESPONSIBILITIES: Build and nurture exceptional relationships with customers, ensuring a strong and lasting partnership. Deliver security solutions directly to customers, including, configuring, troubleshooting, and verifying data sources. Respond promptly to customers requests for guidance, information, or support, escalating issues as necessary and coordinating with other teams to ensure resolution. Proactively engage and communicate with both internal and external stakeholders to foster collaboration and transparency. Serve in a multifaceted role that blends responsibilities of an IT Security Analyst, Security Architect, and Incident Response Consultant. REQUIREMENTS: Bachelor's degree in Computer Science, Information Security, or related discipline. Strong understanding of IT security principles, standards, and best practices. Experience with security information and event management (SIEM) platforms Excellent communication skills with ability to convey complex technical concepts to non-technical audiences Knowledge with leading security frameworks such as NIST, ISO 27001, CIS. Proficiency with security tools, threat detection techniques, and incident response procedures Strong analytical skills, a problem-solving mindset, and a commitment to delivering excellent customer services.

Job Description We are seeking a skilled and motivated Web Application Security Engineer to join our team. As a Web Application Security Engineer, your primary focus will be on managing, monitoring, and responding to security alerts generated by the security tools, while also possessing a solid understanding of various aspects of web application security. You will work closely with development teams to ensure the continuous effectiveness of security measures, identify vulnerabilities, and implement appropriate controls. The ideal candidate will have a strong technical background, a good understanding of web application security principles, and the ability to excel in managing, monitoring, and responding to security alerts. Responsibilities Assist in determining needs and implementing configurations of various tools based on incoming requests. Assist in the testing and validation of security controls to ensure their effectiveness and compliance with industry standards. Manage, monitor, and respond to security alerts generated by the security tools specific to our web application environment. Investigate and triage security alerts, taking appropriate actions and escalations as necessary. Assist in security assessments and penetration testing to identify potential vulnerabilities and recommend suitable solutions. Monitor security logs, alerts, and events to proactively identify potential security incidents. Create and maintain metrics to track the performance and efficacy of security tools, programs, and controls. Contribute to compliance efforts by ensuring adherence to relevant security standards, regulations, and policies. Stay updated with the latest web application security trends, emerging threats, and industry best practices to enhance security measures. Qualifications Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). 3-5 years of relevant experience in web application security, with proficiency in programming languages (HTML, CSS, JavaScript, ASP.NET, PHP, Java, etc.). At least one industry standard certification such as Certified Ethical Hacker (CEH), GIAC Certified Web Application Defender (GWEB), Certified Information Systems Security Professional (CISSP), Certified Application Security Engineer (CASE) or other security vendor certification. Understanding of web application security fundamentals, secure coding practices, and common vulnerabilities (such as SQL injections, cross-site scripting). Demonstrated experience in managing, monitoring, and responding to security alerts generated by security tools and programs specific to web application security. Experience with managing and maintaining Content Delivery Networks (CDNs) and their configurations, preferably Cloudflare. Familiarity with security testing and assessment tools (such as Burp Suite, OWASP ZAP, Nikto, Nessus, Nmap) and their application in vulnerability identification and mitigation. Knowledge of secure software development lifecycle (SDLC) methodologies and ability to apply security principles throughout the development process. Familiarity with security standards and frameworks (OWASP, NIST, PCI DSS, ISO 27001) and their practical application in securing web applications. Excellent communication and collaboration skills with the ability to work effectively with technical and nontechnical stakeholders. Strong analytical mindset and problem-solving abilities to identify and address security risks and vulnerabilities. Self-motivated with a passion for continuous learning and professional development in the field of web application security. Native American Preference Policy: The Tribal Council gives preference in all of its employment practices to Native Americans. First preference in hiring, training, promoting and in all other aspects of employment is given to members of the Seminole Tribe who meet the job requirements. Second preference is given to members of other federally recognized Native American Tribes who meet the job requirements.

We are seeking a skilled and motivated Web Application Security Engineer to join our team. As a Web Application Security Engineer, your primary focus will be on managing, monitoring, and responding to security alerts generated by the security tools, while also possessing a solid understanding of various aspects of web application security. You will work closely with development teams to ensure the continuous effectiveness of security measures, identify vulnerabilities, and implement appropriate controls. The ideal candidate will have a strong technical background, a good understanding of web application security principles, and the ability to excel in managing, monitoring, and responding to security alerts. Responsibilities Assist in determining needs and implementing configurations of various tools based on incoming requests. Assist in the testing and validation of security controls to ensure their effectiveness and compliance with industry standards. Manage, monitor, and respond to security alerts generated by the security tools specific to our web application environment. Investigate and triage security alerts, taking appropriate actions and escalations as necessary. Assist in security assessments and penetration testing to identify potential vulnerabilities and recommend suitable solutions. Monitor security logs, alerts, and events to proactively identify potential security incidents. Create and maintain metrics to track the performance and efficacy of security tools, programs, and controls. Contribute to compliance efforts by ensuring adherence to relevant security standards, regulations, and policies. Stay updated with the latest web application security trends, emerging threats, and industry best practices to enhance security measures. Qualifications Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). 3-5 years of relevant experience in web application security, with proficiency in programming languages (HTML, CSS, JavaScript, ASP.NET, PHP, Java, etc.). At least one industry standard certification such as Certified Ethical Hacker (CEH), GIAC Certified Web Application Defender (GWEB), Certified Information Systems Security Professional (CISSP), Certified Application Security Engineer (CASE) or other security vendor certification. Understanding of web application security fundamentals, secure coding practices, and common vulnerabilities (such as SQL injections, cross-site scripting). Demonstrated experience in managing, monitoring, and responding to security alerts generated by security tools and programs specific to web application security. Experience with managing and maintaining Content Delivery Networks (CDNs) and their configurations, preferably Cloudflare. Familiarity with security testing and assessment tools (such as Burp Suite, OWASP ZAP, Nikto, Nessus, Nmap) and their application in vulnerability identification and mitigation. Knowledge of secure software development lifecycle (SDLC) methodologies and ability to apply security principles throughout the development process. Familiarity with security standards and frameworks (OWASP, NIST, PCI DSS, ISO 27001) and their practical application in securing web applications. Excellent communication and collaboration skills with the ability to work effectively with technical and nontechnical stakeholders. Strong analytical mindset and problem-solving abilities to identify and address security risks and vulnerabilities. Self-motivated with a passion for continuous learning and professional development in the field of web application security. Native American Preference Policy: The Tribal Council gives preference in all of its employment practices to Native Americans. First preference in hiring, training, promoting and in all other aspects of employment is given to members of the Seminole Tribe who meet the job requirements. Second preference is given to members of other federally recognized Native American Tribes who meet the job requirements.

We are seeking a skilled and motivated Web Application Security Engineer to join our team. As a Web Application Security Engineer, your primary focus will be on managing, monitoring, and responding to security alerts generated by the security tools, while also possessing a solid understanding of various aspects of web application security. You will work closely with development teams to ensure the continuous effectiveness of security measures, identify vulnerabilities, and implement appropriate controls. The ideal candidate will have a strong technical background, a good understanding of web application security principles, and the ability to excel in managing, monitoring, and responding to security alerts. Responsibilities Assist in determining needs and implementing configurations of various tools based on incoming requests. Assist in the testing and validation of security controls to ensure their effectiveness and compliance with industry standards. Manage, monitor, and respond to security alerts generated by the security tools specific to our web application environment. Investigate and triage security alerts, taking appropriate actions and escalations as necessary. Assist in security assessments and penetration testing to identify potential vulnerabilities and recommend suitable solutions. Monitor security logs, alerts, and events to proactively identify potential security incidents. Create and maintain metrics to track the performance and efficacy of security tools, programs, and controls. Contribute to compliance efforts by ensuring adherence to relevant security standards, regulations, and policies. Stay updated with the latest web application security trends, emerging threats, and industry best practices to enhance security measures. Qualifications Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). 3-5 years of relevant experience in web application security, with proficiency in programming languages (HTML, CSS, JavaScript, ASP.NET, PHP, Java, etc.). At least one industry standard certification such as Certified Ethical Hacker (CEH), GIAC Certified Web Application Defender (GWEB), Certified Information Systems Security Professional (CISSP), Certified Application Security Engineer (CASE) or other security vendor certification. Understanding of web application security fundamentals, secure coding practices, and common vulnerabilities (such as SQL injections, cross-site scripting). Demonstrated experience in managing, monitoring, and responding to security alerts generated by security tools and programs specific to web application security. Experience with managing and maintaining Content Delivery Networks (CDNs) and their configurations, preferably Cloudflare. Familiarity with security testing and assessment tools (such as Burp Suite, OWASP ZAP, Nikto, Nessus, Nmap) and their application in vulnerability identification and mitigation. Knowledge of secure software development lifecycle (SDLC) methodologies and ability to apply security principles throughout the development process. Familiarity with security standards and frameworks (OWASP, NIST, PCI DSS, ISO 27001) and their practical application in securing web applications. Excellent communication and collaboration skills with the ability to work effectively with technical and nontechnical stakeholders. Strong analytical mindset and problem-solving abilities to identify and address security risks and vulnerabilities. Self-motivated with a passion for continuous learning and professional development in the field of web application security. Native American Preference Policy: The Tribal Council gives preference in all of its employment practices to Native Americans. First preference in hiring, training, promoting and in all other aspects of employment is given to members of the Seminole Tribe who meet the job requirements. Second preference is given to members of other federally recognized Native American Tribes who meet the job requirements. We can recommend jobs specifically for you! Click here to get started.

The Cybersecurity Analyst is responsible for safeguarding organizational systems and data by detecting, analyzing, and responding to cybersecurity threats. This role requires hands-on expertise in security and log analysis, incident response, and triage, as well as experience with Trellix solutions, PCI DSS assessments, and SIEM platforms such as Helix, SolarWinds, and Splunk. Familiarity with NIST 800-53 and NIST 800-35 frameworks is essential. This position also requires a foundational understanding of IT infrastructure, as the analyst will closely partner with the Infrastructure team to ensure end-to-end system security. Key Responsibilities Conduct real-time security monitoring and log analysis to identify potential threats and anomalies. Perform incident response activities including triage, investigation, containment, eradication, and recovery. Manage and tune SIEM platforms (Helix, SolarWinds, Splunk) to ensure effective event correlation and alert accuracy. Utilize Trellix security solutions (e.g., ETP, EDR, Helix) for threat detection, response, and endpoint protection. Conduct PCI DSS assessments and support remediation to ensure compliance with regulatory and industry standards. Develop and maintain incident response plans, playbooks, and post-incident reporting in alignment with NIST 800-53 / 800-35. Perform root cause analysis and recommend proactive measures to reduce risk exposure. Collaborate with cross-functional IT and Infrastructure teams to improve the organization's overall security posture. Participate in a rotational weekly on-call schedule to support after-hours IT support and security. Create detailed reports and metrics on incidents, vulnerabilities, and compliance performance. Stay current on evolving threat landscapes, tools, and cybersecurity frameworks. Required Skills and Qualifications Bachelor's degree in Cybersecurity, Computer Science, Information Technology, or equivalent experience. Proven experience in incident response, security operations, and log analysis. Hands-on experience with Trellix (McAfee) products and other EDR/SIEM solutions. Proficiency in Helix, SolarWinds, and Splunk for monitoring, correlation, and threat hunting. Experience performing or supporting PCI DSS audits and compliance efforts. Solid understanding of NIST SP 800-53 and NIST SP 800-35 frameworks. Strong analytical, troubleshooting, and communication skills. IT infrastructure background with the ability to collaborate effectively with system administrators and network engineers. Ability to lift up to 50 lbs as part of occasional equipment handling or system maintenance tasks. Ability to work in a fast-paced environment and respond effectively under pressure. Preferred Qualifications Security certifications such as CompTIA Security+, CISSP, CISM, CEH, or GCIH. Previous experience in a Security Operations Center (SOC) environment. Familiarity with scripting (Python, PowerShell, Bash) for automation and log parsing. Knowledge of vulnerability management and threat intelligence platforms.

Cloud Security Engineers are responsible for the secure operations of cloud infrastructure, platforms, and software, including the installation, maintenance, and improvement of cloud computing environments. They also help develop new designs and security strategies across cloud-based and hybrid applications, infrastructure, platforms, and SaaS. Leads the analysis, implementation, execution, and improvement of proactive security controls to prevent external threat actors from infiltrating company information or systems. Conducts research and provides leadership updates regarding advanced attempts/efforts to compromise security protocols. Maintains and reviews security systems while assessing security policies that control access to systems. Provides status updates and recommendations to the leadership team regarding the impact of theft, destruction, alteration, or denial of access to information. Follows standard practices and procedures in analyzing situations or data. This position reports to the Director of Information Security. Responsibilities The primary duties and responsibilities of the Cloud Security Engineer are: * Assessing Existing Infrastructure and Identifying Threats. * Providing recommendations on New Infrastructure and Threat Modeling to assist in stakeholder decisions. * Developing, solutioning, operating, maintaining, and supporting a secure cloud environment with technologies including but not limited to: Servers, Storage, Network services, Enterprise applications, Cloud platform support, Automation, CI/CD, Managing cryptography and encryption, IAM, Threat Detection, Logging, PKI, SaaS, and PaaS. * Monitoring for and responding to incidents in cloud environments. * Keeping cloud infrastructure current, making recommendations, and continually improving cloud security technologies. * Analyzing, designing, and developing programs, shell scripts, tests, and infrastructure automation capabilities. * Develop security standards in partnership with Engineering, Infrastructure Services, and Application Development. * Representing the cloud security team in change control activities and ensure proposed changes are in alignment with security best practices. * Staying abreast with security standards and emerging vulnerabilities/threats to proactively resolve/remediate/mitigate. * Engage in digital forensics to investigate breaches or security incidents in the cloud. * Collaborate with Disaster Recovery and Business Continuity Teams and play a pivotal role in developing, testing, and refining disaster recovery plans tailored for cloud environments. * Empower the Security Compliance and Data Protection Team to audit cloud environments to ensure compliance and pinpoint areas of improvement. Using metrics and KPIs to drive and further Security Posture Initiatives. * Establish and maintain a feedback mechanism where security measures are not only implemented but also refined based on feedback to enhance security protocols continuously. * Performing other security team relevant duties and responsibilities as assigned. * Participate in incident response activities as assigned. Preferred Experience * Experience in designing, deploying and operating secure cloud solutions, including design documentation, assessment of risk, cost impact, and proposal of savings. * Experience with Cloud Security Posture Management, Cloud Workload Management, SaaS Security Posture Management, Cloud Network Security, Cloud Native Application Protection and Cloud Identity Security. * Deep technical knowledge of on-prem Data Center technologies as well as Cloud Service, PaaS and SaaS Providers. * Has experience writing formal security assessments and ad-hoc security reports. * Experience working as part of a security incident response team as needed and key escalation point for all cloud related incidents. * Experience delivering security metrics and measurement capability to demonstrate operational security posture. * Experience in data protection and privacy management. Skills Required * Team player able to work effectively at all levels of an organization with the ability to influence others to move toward consensus. * Clear ability to build strong relationships and establish trust with stakeholders at all levels. * Excellent verbal and written communications skills. Multiple language abilities preferred - fluency in English (written and spoken) required. * Strong leadership skills with demonstrated ability to prioritize and execute in a methodical and disciplined manner. * Ability to solve complex problems in a timely manner by working with multiple stakeholders. * Ability to manage multiple tasks and work streams effectively. * Ability to follow detailed procedures and processes with a high degree of accuracy. * Customer-focused mindset, with demonstrated skill in managing expectations, providing proactive status updates, and producing high-quality work product. * Deep understanding of Cyber Security control environments and their relationship to zero-trust networks. * Display a keen ability to adapt to new tools, technologies, and evolving threat landscapes in the realm of cloud security. * Experience in 3 or more of the following: network design, mobile security, network and firewall security technologies, SaaS/PaaS Security, vulnerability management or penetration testing. * Flexibility to travel as required up to 15% overnight travel. Qualifications Experience / Education / Certifications * Bachelor's degree preferred in Computer Sciences, Information Technology, Information Security or other related field * Three (3) years or more experience with architecting and operating solutions involving one or more cloud service providers Microsoft Azure, AWS, GCP, etc. * Five (5) years of Cyber Security related work experience * Practical knowledge of any combination of Payment Card Industry (PCI), GDPR, NIST standards, or ISO27000 series. * At least one industry standard certification such as CCSK, CCSP, Certified Information Systems Security Professional (CISSP), or other Cloud Security certification. #IndeedSHRSS #LI-Hybrid #zipcorpor

Mount Laurel, New Jersey, United States of America **Hours:** 40 **Pay Details:** $87,000 - $151,000 USD TD is committed to providing fair and equitable compensation opportunities to all colleagues. Growth opportunities and skill development are defining features of the colleague experience at TD. Our compensation policies and practices have been designed to allow colleagues to progress through the salary range over time as they progress in their role. The base pay actually offered may vary based upon the candidate's skills and experience, job-related knowledge, geographic location, and other specific business and organizational needs. As a candidate, you are encouraged to ask compensation related questions and have an open dialogue with your recruiter who can provide you more specific details for this role. **Line of Business:** Technology Solutions **:** The Manager Information Security manages / leads a team of Technology Controls / Information Security experts in the development and/ or management of relevant strategies, programs, tools, frameworks and policies and provides specialized oversight / control / governance activities for a key business line/segment or transformational (change the bank) strategic initiative / program, liaising across the organization and primarily interfacing with executive and/or functional stakeholders to minimize overall technology risks to the Bank for own area. **Job Description:** This position manages junior level penetration testers, vendor coordination for multiple testing services, processes, procedures and scheduling for penetration, dynamic scanning, and manual code review testing services. **Responsibilities:** + **Vendor Management:** Manage and coordinate penetration testing engagements with vendors. + **People Management:** Manage a team of Junior level penetration testers and their development. + **DAST:** Manage the DAST program and tooling. Familiarity with current industry tooling and technologies and those being introduced. + **Facilitate Penetration Tests:** Perform thorough and methodical penetration testing. + **Evaluate and Assign:** penetration tests to appropriate resources. + **Vulnerability Assessment:** Assess and analyze security weaknesses, and provide actionable recommendations to mitigate risks and improve overall security posture. + **Report Findings:** Document and communicate findings clearly and effectively to both technical and non-technical stakeholders. Prepare comprehensive reports with recommendations for remediation. + **Develop Test Procedures:** Design and execute detailed test requirements. + **Stay Current:** Keep up-to-date with the latest security trends, vulnerabilities, and tools to ensure testing methodologies are current and effective. + **Collaborate with Teams:** Work closely with IT and development teams to understand system architectures, provide guidance on security best practices, and support the implementation of security improvements; work closely with advisory and SDLC pipeline teams to ensure compliance; work closely with PCS team to manage PCI testing requirements. This position will collaborate with many application security teams. + **Perform Risk Assessments:** Evaluate and assess potential security risks related to new and existing systems and technologies. + **Compliance:** Ensure that penetration testing practices comply with relevant regulations, standards, and organizational policies. + **Incidents:** Act as a testing SME on incident calls; support testers on the calls. **Depth & Scope:** + Advanced knowledge of Bank, technology standards and managing people / projects + Leads a small team of IT professionals; coaches/ educates, monitors and manages team members + Strong communication, negotiation and organizational skills specifically including the ability to present options in business terms to both IT and business staff including executives **Education & Experience:** + Bachelor's degree preferred + Information security certification / accreditation an asset + 7+ years of relevant experience **Preferred Qualifications :** + **Technical Skills:** + Proficiency in penetration testing tools such as Metasploit, Burp Suite, Nmap, and Kali. + Knowledge of common web application vulnerabilities (e.g., OWASP Top Ten) and network security principles. + Penetration testing, DAST, Manual Code Review knowledge. + **Analytical Skills:** Strong analytical and problem-solving abilities with attention to detail. + **Organizational Skills:** Manage documents and procedures for testing team. + **Multi-tasking** : This job requires exceptional ability to multi-task with multiple workstreams to manage daily. + **Communication:** Excellent verbal and written communication skills, with the ability to convey complex technical concepts to non-technical stakeholders. + **Ethical Standards:** Demonstrated understanding of ethical hacking principles and a commitment to maintaining high ethical standards. + Experience with penetration testing in AI, cloud environments (e.g., AWS, Azure) and PCI testing. + Familiarity with security standards and frameworks. + Previous experience managing and developing teams. + **Certifications:** Relevant certifications such as Offensive Security Certified Professional (OSCP), Certified Ethical Hacker (CEH), or GIAC Penetration Tester (GPEN) are highly desirable. + Provide support and consulting in preparation for Audits and in composing management responses and appropriate remediation activities + Participate in computer security incident responses relevant to business (or enterprise wide) and represent respective function and Enterprise position to the business, and business needs to incident response team \#TDCyberSecurity #Hybrid **Physical Requirements:** Never: 0%; Occasional: 1-33%; Frequent: 34-66%; Continuous: 67-100% + Domestic Travel - Occasional + International Travel - Never + Performing sedentary work - Continuous + Performing multiple tasks - Continuous + Operating standard office equipment - Continuous + Responding quickly to sounds - Occasional + Sitting - Continuous + Standing - Occasional + Walking - Occasional + Moving safely in confined spaces - Occasional + Lifting/Carrying (under 25 lbs.) - Occasional + Lifting/Carrying (over 25 lbs.) - Never + Squatting - Occasional + Bending - Occasional + Kneeling - Never + Crawling - Never + Climbing - Never + Reaching overhead - Never + Reaching forward - Occasional + Pushing - Never + Pulling - Never + Twisting - Never + Concentrating for long periods of time - Continuous + Applying common sense to deal with problems involving standardized situations - Continuous + Reading, writing and comprehending instructions - Continuous + Adding, subtracting, multiplying and dividing - Continuous The above statements are intended to describe the general nature and level of work being performed by people assigned to this job. They are not intended to be an exhaustive list of all responsibilities, duties and skills required. The listed or specified responsibilities & duties are considered essential functions for ADA purposes. **Who We Are:** TD is one of the world's leading global financial institutions and is the fifth largest bank in North America by branches/stores. Every day, we deliver legendary customer experiences to over 27 million households and businesses in Canada, the United States and around the world. More than 95,000 TD colleagues bring their skills, talent, and creativity to the Bank, those we serve, and the economies we support. We are guided by our vision to Be the Better Bank and our purpose to enrich the lives of our customers, communities and colleagues. TD is deeply committed to being a leader in customer experience, that is why we believe that all colleagues, no matter where they work, are customer facing. As we build our business and deliver on our strategy, we are innovating to enhance the customer experience and build capabilities to shape the future of banking. Whether you've got years of banking experience or are just starting your career in financial services, we can help you realize your potential. Through regular leadership and development conversations to mentorship and training programs, we're here to support you towards your goals. As an organization, we keep growing - and so will you. **Our Total Rewards Package** Our Total Rewards package reflects the investments we make in our colleagues to help them and their families achieve their financial, physical and mental well-being goals. Total Rewards at TD includes base salary and variable compensation/incentive awards (e.g., eligibility for cash and/or equity incentive awards, generally through participation in an incentive plan) and several other key plans such as health and well-being benefits, savings and retirement programs, paid time off (including Vacation PTO, Flex PTO, and Holiday PTO), banking benefits and discounts, career development, and reward and recognition. Learn more (*************************************** **Additional Information:** We're delighted that you're considering building a career with TD. Through regular development conversations, training programs, and a competitive benefits plan, we're committed to providing the support our colleagues need to thrive both at work and at home. **Colleague Development** If you're interested in a specific career path or are looking to build certain skills, we want to help you succeed. You'll have regular career, development, and performance conversations with your manager, as well as access to an online learning platform and a variety of mentoring programs to help you unlock future opportunities. Whether you have a passion for helping customers and want to expand your experience, or you want to coach and inspire your colleagues, there are many different career paths within our organization at TD - and we're committed to helping you identify opportunities that support your goals. **Training & Onboarding** We will provide training and onboarding sessions to ensure that you've got everything you need to succeed in your new role. **Interview Process** We'll reach out to candidates of interest to schedule an interview. We do our best to communicate outcomes to all applicants by email or phone call. **Accommodation** TD Bank is an equal opportunity employer. All qualified applicants will receive consideration for employment without regard to race, color, religion, sex, sexual orientation, gender identity, national origin, age, disability, status as a protected veteran or any other characteristic protected under applicable federal, state, or local law. If you are an applicant with a disability and need accommodations to complete the application process, please email TD Bank US Workplace Accommodations Program at *************** . Include your full name, best way to reach you and the accommodation needed to assist you with the applicant process. Federal law prohibits job discrimination based on race, color, sex, sexual orientation, gender identity, national origin, religion, age, equal pay, disability and genetic information.

Job DescriptionAt ITRADE STEM, we help accelerate job creation and support the future of industries in space, technology, energy, and manufacturing. We achieve this by developing workforce programs that equip talent with skills for sustainable growth. Join us on our mission to redefine STEM! JOB OVERVIEW: ITRADE is seeking a Concierge Security Engineer (CSE) to join our team in Fort Lauderdale, FL , for an internship opportunity. The Concierge Security Engineer will build and maintain strong customer partnerships while delivering customized security solutions. Core duties include investigating security incidents, configuring and troubleshooting data sources, and ensuring smooth service delivery. Respond promptly to customer requests for guidance, information, or support, coordinating with other teams when needed. Foster proactive communication and collaboration with internal and external stakeholders. The Concierge Security Engineer (CSE) role is an excellent internship opportunity for a highly talented, high-potential aspiring cybersecurity analyst who thrives in a highly dynamic environment. This opportunity combines the expertise of an IT Security Analyst, Security Architect, and Incident Response Consultant. Success requires strong technical capabilities and the ability to communicate complex security concepts clearly and effectively to a non-technical audience. RESPONSIBILITIES: Build and nurture exceptional customer relationships, ensuring a strong and lasting partnership Deliver security solutions directly to customers, including configuring, troubleshooting, and verifying data sources Respond promptly to customers' requests for guidance, information, or support, escalating issues as necessary and coordinating with other teams to ensure resolution Proactively engage and communicate with internal and external stakeholders to foster collaboration and transparency Serve in a multifaceted role that blends responsibilities of an IT Security Analyst, Security Architect, and Incident Response Consultant REQUIREMENTS: Bachelor's degree in Computer Science, Information Security, or related discipline Strong understanding of IT security principles, standards, and best practices Experience with security information and event management (SIEM) platforms Excellent communication skills with the ability to convey complex technical concepts to non-technical audiences Knowledge of leading security frameworks such as NIST, ISO 27001, CIS Proficiency with security tools, threat detection techniques, and incident response procedures Strong analytical skills, a problem-solving mindset, and a commitment to delivering excellent customer services

Job Description Cloud Security Engineers are responsible for the secure operations of cloud infrastructure, platforms, and software, including the installation, maintenance, and improvement of cloud computing environments. They also help develop new designs and security strategies across cloud-based and hybrid applications, infrastructure, platforms, and SaaS. Leads the analysis, implementation, execution, and improvement of proactive security controls to prevent external threat actors from infiltrating company information or systems. Conducts research and provides leadership updates regarding advanced attempts/efforts to compromise security protocols. Maintains and reviews security systems while assessing security policies that control access to systems. Provides status updates and recommendations to the leadership team regarding the impact of theft, destruction, alteration, or denial of access to information. Follows standard practices and procedures in analyzing situations or data. This position reports to the Director of Information Security. Responsibilities The primary duties and responsibilities of the Cloud Security Engineer are: Assessing Existing Infrastructure and Identifying Threats. Providing recommendations on New Infrastructure and Threat Modeling to assist in stakeholder decisions. Developing, solutioning, operating, maintaining, and supporting a secure cloud environment with technologies including but not limited to: Servers, Storage, Network services, Enterprise applications, Cloud platform support, Automation, CI/CD, Managing cryptography and encryption, IAM, Threat Detection, Logging, PKI, SaaS, and PaaS. Monitoring for and responding to incidents in cloud environments. Keeping cloud infrastructure current, making recommendations, and continually improving cloud security technologies. Analyzing, designing, and developing programs, shell scripts, tests, and infrastructure automation capabilities. Develop security standards in partnership with Engineering, Infrastructure Services, and Application Development. Representing the cloud security team in change control activities and ensure proposed changes are in alignment with security best practices. Staying abreast with security standards and emerging vulnerabilities/threats to proactively resolve/remediate/mitigate. Engage in digital forensics to investigate breaches or security incidents in the cloud. Collaborate with Disaster Recovery and Business Continuity Teams and play a pivotal role in developing, testing, and refining disaster recovery plans tailored for cloud environments. Empower the Security Compliance and Data Protection Team to audit cloud environments to ensure compliance and pinpoint areas of improvement. Using metrics and KPIs to drive and further Security Posture Initiatives. Establish and maintain a feedback mechanism where security measures are not only implemented but also refined based on feedback to enhance security protocols continuously. Performing other security team relevant duties and responsibilities as assigned. Participate in incident response activities as assigned. Preferred Experience Experience in designing, deploying and operating secure cloud solutions, including design documentation, assessment of risk, cost impact, and proposal of savings. Experience with Cloud Security Posture Management, Cloud Workload Management, SaaS Security Posture Management, Cloud Network Security, Cloud Native Application Protection and Cloud Identity Security. Deep technical knowledge of on-prem Data Center technologies as well as Cloud Service, PaaS and SaaS Providers. Has experience writing formal security assessments and ad-hoc security reports. Experience working as part of a security incident response team as needed and key escalation point for all cloud related incidents. Experience delivering security metrics and measurement capability to demonstrate operational security posture. Experience in data protection and privacy management. Skills Required Team player able to work effectively at all levels of an organization with the ability to influence others to move toward consensus. Clear ability to build strong relationships and establish trust with stakeholders at all levels. Excellent verbal and written communications skills. Multiple language abilities preferred - fluency in English (written and spoken) required. Strong leadership skills with demonstrated ability to prioritize and execute in a methodical and disciplined manner. Ability to solve complex problems in a timely manner by working with multiple stakeholders. Ability to manage multiple tasks and work streams effectively. Ability to follow detailed procedures and processes with a high degree of accuracy. Customer-focused mindset, with demonstrated skill in managing expectations, providing proactive status updates, and producing high-quality work product. Deep understanding of Cyber Security control environments and their relationship to zero-trust networks. Display a keen ability to adapt to new tools, technologies, and evolving threat landscapes in the realm of cloud security. Experience in 3 or more of the following: network design, mobile security, network and firewall security technologies, SaaS/PaaS Security, vulnerability management or penetration testing. Flexibility to travel as required up to 15% overnight travel. Qualifications Experience / Education / Certifications Bachelor's degree preferred in Computer Sciences, Information Technology, Information Security or other related field Three (3) years or more experience with architecting and operating solutions involving one or more cloud service providers Microsoft Azure, AWS, GCP, etc. Five (5) years of Cyber Security related work experience Practical knowledge of any combination of Payment Card Industry (PCI), GDPR, NIST standards, or ISO27000 series. At least one industry standard certification such as CCSK, CCSP, Certified Information Systems Security Professional (CISSP), or other Cloud Security certification. #IndeedSHRSS #LI-Hybrid #zipcorpor

We are seeking a skilled and motivated Web Application Security Engineer to join our team. As a Web Application Security Engineer, your primary focus will be on managing, monitoring, and responding to security alerts generated by the security tools, while also possessing a solid understanding of various aspects of web application security. You will work closely with development teams to ensure the continuous effectiveness of security measures, identify vulnerabilities, and implement appropriate controls. The ideal candidate will have a strong technical background, a good understanding of web application security principles, and the ability to excel in managing, monitoring, and responding to security alerts. Responsibilities * Assist in determining needs and implementing configurations of various tools based on incoming requests. * Assist in the testing and validation of security controls to ensure their effectiveness and compliance with industry standards. * Manage, monitor, and respond to security alerts generated by the security tools specific to our web application environment. * Investigate and triage security alerts, taking appropriate actions and escalations as necessary. * Assist in security assessments and penetration testing to identify potential vulnerabilities and recommend suitable solutions. * Monitor security logs, alerts, and events to proactively identify potential security incidents. * Create and maintain metrics to track the performance and efficacy of security tools, programs, and controls. * Contribute to compliance efforts by ensuring adherence to relevant security standards, regulations, and policies. * Stay updated with the latest web application security trends, emerging threats, and industry best practices to enhance security measures. Qualifications * Bachelor's degree in Computer Science, Information Security, or a related field (or equivalent experience). * 3-5 years of relevant experience in web application security, with proficiency in programming languages (HTML, CSS, JavaScript, ASP.NET, PHP, Java, etc.). * At least one industry standard certification such as Certified Ethical Hacker (CEH), GIAC Certified Web Application Defender (GWEB), Certified Information Systems Security Professional (CISSP), Certified Application Security Engineer (CASE) or other security vendor certification. * Understanding of web application security fundamentals, secure coding practices, and common vulnerabilities (such as SQL injections, cross-site scripting). * Demonstrated experience in managing, monitoring, and responding to security alerts generated by security tools and programs specific to web application security. * Experience with managing and maintaining Content Delivery Networks (CDNs) and their configurations, preferably Cloudflare. * Familiarity with security testing and assessment tools (such as Burp Suite, OWASP ZAP, Nikto, Nessus, Nmap) and their application in vulnerability identification and mitigation. * Knowledge of secure software development lifecycle (SDLC) methodologies and ability to apply security principles throughout the development process. * Familiarity with security standards and frameworks (OWASP, NIST, PCI DSS, ISO 27001) and their practical application in securing web applications. * Excellent communication and collaboration skills with the ability to work effectively with technical and nontechnical stakeholders. * Strong analytical mindset and problem-solving abilities to identify and address security risks and vulnerabilities. * Self-motivated with a passion for continuous learning and professional development in the field of web application security. Native American Preference Policy: The Tribal Council gives preference in all of its employment practices to Native Americans. First preference in hiring, training, promoting and in all other aspects of employment is given to members of the Seminole Tribe who meet the job requirements. Second preference is given to members of other federally recognized Native American Tribes who meet the job requirements.